$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7980d2a9-9ad0-487c-82a5-834ec5af0a39.roa File: 7980d2a9-9ad0-487c-82a5-834ec5af0a39.roa (raw, json) Hash identifier: +ghU6P35wZ22hBvBx5CqSB/UFufqz6CdoKqt7+LJjOQ= Subject key identifier: D3:30:68:9B:F0:04:AA:2D:89:41:EF:C9:8B:D6:ED:68:AD:28:17:D0 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 31C2A6388F59B9A8DDF21C61D6F85677951045B1 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7980d2a9-9ad0-487c-82a5-834ec5af0a39.roa Signing time: Mon 06 Oct 2025 17:40:47 +0000 ROA not before: Mon 06 Oct 2025 17:40:47 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:a::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:c2:a6:38:8f:59:b9:a8:dd:f2:1c:61:d6:f8:56:77:95:10:45:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 6 17:40:47 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=f7a3fdd1630d2c6d48d3a52cb077cd84316bf1ee5d0f3b2797a238e6ee916324, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:71:52:43:5e:c4:86:5c:f1:e6:aa:88:6e:29: d0:fc:d6:88:83:1a:e0:d7:6e:f5:3a:de:c4:be:ad: d4:5b:de:b5:af:65:02:6c:59:fa:f5:96:20:8b:00: d7:2b:2d:3f:5b:2a:f3:24:62:1c:0f:a8:a8:a1:ec: 18:80:4b:c7:e9:b9:e6:18:bf:3c:c4:2e:50:5b:ab: 63:e5:a4:ce:73:c0:1d:9b:d8:76:a5:43:ca:1b:2f: cb:c3:d0:2c:74:4e:85:71:37:77:23:36:8e:db:fd: 1a:3b:65:21:df:20:34:bb:82:fe:9f:c3:27:12:96: 21:d1:d7:ee:24:5b:41:ff:d8:12:21:a1:87:17:0e: 87:40:42:17:10:c6:56:3c:8c:e1:96:e1:8b:9b:08: 44:9f:d6:14:27:fd:cb:3d:fc:06:63:74:93:0e:5a: f6:12:81:3c:81:96:81:fe:4b:cf:86:64:65:3a:ad: 28:e2:2d:e0:dc:c9:d4:c8:d8:7c:50:e9:c7:3a:d1: 5a:95:16:01:14:4d:36:6b:e8:e7:ac:64:5a:64:4e: 33:b1:9a:e8:11:62:63:dc:c0:d5:e1:8a:ac:59:d8: dd:81:fe:5a:50:70:84:d1:b5:16:c3:29:1a:9d:b2: 9a:cd:af:a9:77:0b:10:f6:4d:14:71:6a:16:31:64: ff:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:30:68:9B:F0:04:AA:2D:89:41:EF:C9:8B:D6:ED:68:AD:28:17:D0 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7980d2a9-9ad0-487c-82a5-834ec5af0a39.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:a::/47 Signature Algorithm: sha256WithRSAEncryption a1:eb:9f:b7:74:51:94:e7:a0:bd:19:64:e5:ea:9d:68:8c:d9: 44:7c:42:e4:ce:b3:74:fa:df:bb:52:26:c2:9e:4c:d7:6e:04: 81:2e:6d:d0:bd:a5:4b:de:e2:3a:eb:89:c0:0f:f4:bb:98:c1: ed:94:55:1b:ad:fa:3f:bd:74:64:04:cc:68:f9:9b:15:ed:5d: 34:82:ab:52:3e:f3:71:0b:34:38:ac:f2:9e:f6:1d:dd:09:21: e4:eb:77:5e:9c:51:92:d7:c4:87:e0:9c:fd:52:8b:e6:01:c1: e8:64:7e:d7:ca:f4:f7:fc:ec:39:77:8d:77:27:c5:f5:22:a0: 1a:39:61:82:b4:a1:86:81:5c:58:6a:27:3d:eb:22:ad:99:50: 01:02:92:1b:dd:33:80:71:67:44:36:8c:35:86:bd:a3:10:f3: 78:d3:ce:3c:fd:37:74:df:e6:45:88:13:7e:dd:16:02:37:67: 44:08:18:84:86:3a:28:3d:16:00:8b:ff:8d:d3:1b:72:d7:7d: 99:06:db:d7:17:3d:da:8d:9e:e9:fd:82:ec:13:f5:2a:a6:7b: 03:84:24:25:b3:58:d5:55:19:f7:cf:66:a6:aa:a7:f5:63:24: 59:e0:6e:e3:93:db:59:06:df:9d:5d:a8:e7:3d:e5:95:77:bf: 97:3b:df:9d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMcKmOI9Zuajd8hxh1vhWd5UQRbEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDA2MTc0MDQ3WhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmN2EzZmRkMTYzMGQyYzZkNDhkM2E1MmNiMDc3Y2Q4NDMx NmJmMWVlNWQwZjNiMjc5N2EyMzhlNmVlOTE2MzI0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCscVJDXsSGXPHmqohuKdD81oiDGuDXbvU63sS+rdRb3rWv ZQJsWfr1liCLANcrLT9bKvMkYhwPqKih7BiAS8fpueYYvzzELlBbq2PlpM5zwB2b 2HalQ8obL8vD0Cx0ToVxN3cjNo7b/Ro7ZSHfIDS7gv6fwycSliHR1+4kW0H/2BIh oYcXDodAQhcQxlY8jOGW4YubCESf1hQn/cs9/AZjdJMOWvYSgTyBloH+S8+GZGU6 rSjiLeDcydTI2HxQ6cc60VqVFgEUTTZr6OesZFpkTjOxmugRYmPcwNXhiqxZ2N2B /lpQcITRtRbDKRqdsprNr6l3CxD2TRRxahYxZP+dAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU0zBom/AEqi2JQe/Ji9btaK0oF9AwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzc5ODBkMmE5LTlhZDAtNDg3Yy04MmE1LTgzNGVjNWFmMGEzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAPDwAAowDQYJKoZIhvcNAQELBQADggEBAKHrn7d0UZTnoL0ZZOXqnWiM 2UR8QuTOs3T637tSJsKeTNduBIEubdC9pUve4jrricAP9LuYwe2UVRut+j+9dGQE zGj5mxXtXTSCq1I+83ELNDis8p72Hd0JIeTrd16cUZLXxIfgnP1Si+YBwehkftfK 9Pf87Dl3jXcnxfUioBo5YYK0oYaBXFhqJz3rIq2ZUAECkhvdM4BxZ0Q2jDWGvaMQ 83jTzjz9N3Tf5kWIE37dFgI3Z0QIGISGOig9FgCL/43TG3LXfZkG29cXPdqNnun9 guwT9SqmewOEJCWzWNVVGffPZqaqp/VjJFngbuOT21kG351dqOc95ZV3v5c7350= -----END CERTIFICATE-----Generated at Mon Oct 20 13:53:10 2025 by rpki-client